Re: Error msg. 4007
From: Ace Fekay [MVP] (PleaseSubstituteMyActualFirstName&LastNameHere_at_hotmail.com)
Date: 01/08/05
- Next message: Jonathan de Boyne Pollard: "Microsoft's DNS server now has an article in Wikipedia."
- Previous message: Ace Fekay [MVP]: "Re: Duplicate Name on Network"
- In reply to: John Rosenlof: "Error msg. 4007"
- Next in thread: John Rosenlof: "Re: Error msg. 4007"
- Reply: John Rosenlof: "Re: Error msg. 4007"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 7 Jan 2005 23:32:04 -0500
In news:enxgzvQ9EHA.2540@TK2MSFTNGP09.phx.gbl,
John Rosenlof <greyseal96@hotmail.com> made a post then I commented below
:: Hi, I was reading some of the questions and it appears that this may
:: have already been answered, but mine is slightly different so I want
:: to just be sure. I'm running Win2k3 Server, it's a tree in the
:: forest and the only dc in the domain. I had to remove the old AD,
:: but I made sure that I followed all of the instructions that were
:: laid out in the KB articles that I read. To the best of my
:: knowledge, this has all been done cleanly and when I installed all
:: of this I didn't get any error messages. I'm getting this error
:: message every time I either reboot or try to restart the DNS server:
::
:: Event Type: Error
:: Event Source: DNS
:: Event Category: None
:: Event ID: 4007
:: Date: 1/7/2005
:: Time: 2:13:10 PM
:: User: N/A
:: Computer: XXSERVER1
:: Description:
:: The DNS server was unable to open zone _msdcs.XXXXXXE.COM in the
:: Active Directory from the application directory partition
:: ForestDnsZones.XXXXXXE.COM. This DNS server is configured to obtain
:: and use information from the directory for this zone and is unable
:: to load the zone without it. Check that the Active Directory is
:: functioning properly and reload the zone. The event data is the
:: error code.
::
::
:: I'm also getting an error:
::
:: Event Type: Information
:: Event Source: DNS
:: Event Category: None
:: Event ID: 113
:: Date: 1/7/2005
:: Time: 2:13:09 PM
:: User: N/A
:: Computer: XXSERVER1
:: Description:
:: The DNS server could not signal the service "NAT". The error was
:: 1168. There may be interoperability problems between the DNS service
:: and this service.
<snip>
Sounds like it thinks the zone is in the ForestDnsZones app partition. How
is the zone replication scope set in the zone properties? Also, have you
checked with ADSIEdit if there's a dupe zone in the Domain partitions?
As for the 113 error, sounds like you are trying to use ICS and not NAT, but
DNS is installed on the machine. Is this a multihomed domain controller and
you are tyring to offer Inernet access thru it? That can be tricky to setup
correctly if it is. It's less expensive, easier to setup, and will not
expose your DC to the Internet if you were to use a Linksys, Netgear, etc,
router to handle NAT for the nework than using your DC. If you want to
continue using it, disable ICS and configure NAT. Read this please...
http://www.eventid.net/display.asp?eventid=113&eventno=3869&source=DNS&phase=1
--
Regards,
Ace
G O E A G L E S !!!
Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.
This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
--
=================================
- Next message: Jonathan de Boyne Pollard: "Microsoft's DNS server now has an article in Wikipedia."
- Previous message: Ace Fekay [MVP]: "Re: Duplicate Name on Network"
- In reply to: John Rosenlof: "Error msg. 4007"
- Next in thread: John Rosenlof: "Re: Error msg. 4007"
- Reply: John Rosenlof: "Re: Error msg. 4007"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
